Bestand wählen
Merken

Kick Starting our DevOps Transition with Chef Compliance

Zitierlink des Filmsegments
Embed Code

Automatisierte Medienanalyse

Beta
Erkannte Entitäten
Sprachtranskript
the view of again and so the idea Gary bright homonym structure develop a work for a managed service provider and were based in the UK and hands we could only hosts and uh like in such as a platform as solutions for customers and the customers range from a loss of different sectors but exposes on the whole the majority of our customers are from the frantic and industry we um have support a lot of what we call challenger banks but if you have these in the US very small start-up that banks than many have like 10 customers but then the market's really exploded in the UK that they all need and to comply to regulation and into where we tell them on that journey given starting have given into a successful bank I am a us marks of spike trains that that is my bread-and-butter exposed and I'm also open so hard so so you know if you like at any point the 1 then please feel free to come up and on I'm also and get help uh yeah that is a username born of frustration of not actually funny users and I wanted it had to find the we have 1 daughter being taken scenarios way and that was to uh um coordinate lists or the beginnings of my chest journey started
uh some backing 2050 and I'm just going into regression management if a monist still just try to find out where where where fitted in what it could do for the has some good things and so yeah we signed up for uh Culligan I and went to the some in London and and very privileged I think and because of mean always let users the face in the crowd at that point about we will quality of is to be witness to Inspec inch of compliance launching of the event and so for me it was literally a light bulb going off and I've
come from my enterprise backgrounds and where the nite they maintain very large binder of your internal security policies in a really large documents that you have to painstakingly work your way for a user to make sure that you deliver through the internal security and the whole idea around taking that documentation and then applying it to guide was just yet instantly see the benefits coming out of the box in a you got the ability to scan and edit and again scanning is decent and 9 baselines and the reporting sort of thing again was really good that we it was really hard to kind of articulate or gather the information is that we using the tools that we counting and and and so just just to have that there and I should just automated from an interim point you know it was the ability to be able to scan more than 1 102 against a ticket baseline in that it it was in a very positive and I think from the biggest 1 was that they had already aligned themselves to the serious standards and we as an organization based all Bill standards against the standards and I've done if anyone's familiar with the it's it's really good security baseline to adopt join in and it's community driven in over the and the settings in the controls are in place that get defined as part the baseline can be debated if I said something then you can petition and on the form to give it to change and um yes so we we use this letter on the security baselines against anything that we deliver so it's not just races but we also applied to a sequel application stacks and stuff you basically just let and so as a solid foundations of compliance would and insulae help us with what we need to do for already regulatory and PCI compliance in the reporting for the FSA is all the things we can we have to do and but actually the talking over and like kind of debating insights in internally with work within our organization where she thought it was a platform for something else and to kind of complement what we need to see the kind of things that fall outside of the compliance in everyone's complies import and we've got to meet but the same time we kind of thought well there are things that we would like to could be compliant on that don't necessarily fall into regulatory compliance say the idea around lessons learned and and best practices you know these these could be very intend to you you may have a best practice for you know you'll application delivery in that's it doesn't have any regulatory requirement to be set that way but as an organization you've defined that standard and is like well we define the standards for delivering of applications what we have those is carried and so yeah we're really really excited about those and lessons learned think was quite key and it's it's around the idea of just looking to trying if it if you if you had announces for example and stuff like that of something where even learn a lesson they even had to go around and check all you have a we exposed anywhere else across any of our other customers it was those they were the ones at least a week ago after we chose internally to deploy compliance 1st as a so we was Steiner shift early and we haven't gone the shift server routes so we won't writing this piece and going through automation we went with compliance 1st as of basically we thought we could get a as a quick ROI and get get back to the business so our ability to basically be able to foster the ploidy you've already got baselines there already and it doesn't take you know too much to actually give stood up and and actually start consuming some results and and then hopefully benefiting from those 2 sections I mentioned earlier just going off to the action of the configurations you systems trying to reduce that we work where you know you build a server in given over to replication Kaiser then they say we didn't set this and it comes back and you know all that all that time lag where systems jumping between departments in just focusing on actually getting that done and and the lessons learned pieces about the reducing the unplanned work just trying to find those things that um uh you know potentially cause you or your customers by the loss of service the the course you know you have to focus
on delivering the so basically we thought will if we ended up defining on compliance requirements 1st on the wall is compliance to us then then we would gain insight on what is important and I think a nice and sigh products of that is that by defining what is compliant to use a lot more in your important compliant aspects then I think it gives you a blueprint to and defined like function as a function of spec of what you need a recipe to do ingest debase lever mediate against the thing that you found as completed so yeah that was the that was a plan war uh my boss pitch to the board and whom you what you have so we went through and as many as the Cornish Cornish ways what court common a half so yeah my boss and laid out the yen late elementary here here what was messing around so there we would write a compliance profile for all devices that we have in production that was the name and if a customer suffered a 7 1 onstage so a really service impacting on then we would and pull together to write to control to kind of work on the right what this issue happened let's see if we're exposed in warehouse and so when we look where we stop so I'm giving you some ideas here between 2 different parts 2 and targets in compliance the targets of the things that you're going to basically target as part of your in spectral shift compliant reading so we've started out of its advice matrix so if you have a similar list in your organization and consider what you go in your state and you need around talking everything is a half service bare-metal switches from channel files and you know if you've got any particular devices gone network interface remote-management cards and here I have a kid do you go on just trying consider that a new organization and where where that would fit and basically we went to try and target everything that we can't and the service catalog also includes application this so it wasn't necessarily an end point for an OS the maybe part management stack my included and some software or something like that so maybe you could write compliance control around each of the components you management that is a correctly configured and insofar and then on to the the the the basic best practices part you that the bill stand is the set up guides if you've got anything where you've got you you're asking someone to configure system in take away in a look to try and convert that into code I mean they are great examples sequel hand over documents for us was such a big going where you know unit layer up a sequel server and get it configured in a way that it needs to be done here we're spending a just to try and get it back on this stuff down and then people with and validating the work that we had done if you can basically delivery system shown the reporters show that is already configured in a adapted the to worry about double checking you work so yeah that that there were quite king and what it will build build standards high configure your your OS itself we layer on top of the CIS standards but we still have stuff that we know that we want configured and then lessons learnt some lessons let's of previous events we went back through the ticket history are politics in platform we have a look at may just have 1 instance why do we have these and is there any way that we basically analyze from from what had happened so that we could basically right a compliance control around and and then you know you just trying to reduce that and then front lines of people on front-line talking to people have and they're dealing with the help desk at all maybe in the 1st line on the telephone they were really good at and I think they did of masking a lot of issues and it wasn't too you have those one-to-one coffee in a coffee that's where you tell me what is what is that keeps burning wide gaining energy can woken up have hours a lot of checks that we got came hop conversations and indeed and it's really hard I think to just get people to give you the information I think you get much better results if you when you know if you did if he did as a dialog in 1 until to them and and it really helps and I think if across all of those I think my voice Stephanie's together border shallow that was definitely dementia that we had before the kind of scope that we were looking to and to roll out a mommy my and shallow is but we were trying to hit every device across our state we needed space lay the groundwork so that we could if we needed to write a new control that basically was able to then immediately rollout scanners devices to go broad but shallow in that I right we ended up choosing 5 so there for each device type we basically how wall 5 key and issues were there with that take advice and then encoded around those again they were the ones they want just the 1st 5 that we thought of their kind of like what tell us all the issues and then we kind of evaluating which ones are and the basic important shallow you can get a coverage you get the ability to basically be role that new controls and get the results here can quickly so you don't bold emission can go small and in sort small and an angle with and to give you kind of idea where we're going with the hand-offs and the kind of an the set of guides and we look to kind of measure of progress and it's 1 of the things we hosted lessons learned and and best practices so best practice for us was the time saving and so that if we could take that handover documents and reduce that hand off that somebody was having to wait and receive and review the configuration we you basically Anderson savings so as an example associated with the mining process of 15 minutes to review the configuration of an application and and you basically where the 2 also mcdonald's way process then went down to minute in EU coming from 3 . 1 2 5 man days and down to base 100 minutes of automated time based safety and it is it's it's it's really key and especially for high velocity flights where your your trying to reduce the time that they need to make changes quickly and you know a lot of our season day waking needs 10 is around and by having this assessed code and something you can automate really helps regarding the reduction of reducing unplanned work so this was the lessons learned to kind of crazy and measure for this and we chose to and and we we concluded that a critical compliance failure and acquitted towers were from planned work it so what I mean by that is an the critical compliance failure would have equated to 1 service outage for customer and we came to the conclusion that for every set 1 that we had there was at least 8 hours worth of an effort are related to the unplanned work so if you take into account the and the person receiving the call maybe there was a couple of hours for and a couple of engineers to want to work on the sheet either natural and our for you need is to close of the response you might be needed in an executive and involvement to basically talk to the customer so you try and consider how long and or how many people were involved in your organization we need to have base of 1 she's because if you are able to prove in a densify and those then you can really save and you know that a lot of effort so it as an example if you uh across a thousand devices you identified 100 critical issues and that's 100 man-days were from planned work it's it's really hard to hard to quantify but you do and and said many perceived benefit in that you haven't had issues but you've identified that the error could grantees has been you in the past so there's no reason why potentially come and say you know you can use something like this again these metrics and I just giving as examples of how we work we cannot take that into organization and have a look and see how it fits what is an he's um review the device matrix you've uh go an idea of the and the kind of things you get a target the kind of things that you know right compliance 6 4 and they think you know I have what you need and but you know you're a bit of a crossroads and and someone is a you there a bit of a potential there and you could turn that's the 1 of the most hated people in your company and the logic is that you chose and then identified a number of failures and great uh but the exact so now we nervous that are basically sitting on potential uh entities and all take you for the additional uh work that you just gave them so have have you solve this
and were sorry an
basically a dense in an ivory tower a dense in ivory tower became adoption with OPS is key and and unlike a good chess player where you're thinking X number of moves ahead I think consider when you're writing down right in the controls and basically and who's going to receive it in a who's gonna be who's going to receive you know what the y you what YOU writings control he's going to basically receiver and then an interaction that potentially in trying keep in mind who the person is you write in the control for who's going to consume it and because I think if you can get the buy-in from opsin that's key and then by driving adoption again the Bayern you you can really help drive adoption in your organization yeah and we ran as a series where it was what 1 thing and I mentioned before we were important shallow so we try focus on 5 key it's like controls for optical device but we're asking people what 1 thing would help them and in their day if we can write compliance control what 1 thing would help your day or you know the mean the eating it woken have not something that would spot the conversation and it's it was quite hard I think people when they thought a were writing code will not develop and you just really trying to empower people to and just you articulate to me the business challenge that you have an iron and team around us will convert that into code and and that's the bit that you really need to to help CIA OS question and get then to choose because if you are able to deliver as a report that fixes the thing the 1 thing that they also I guarantee they can support you and again and again again follow-through and actually probably support you in the resolution of getting his machines fixed and CIA and do that and also maybe do 1 ideas prints so you got the idea and just kind of just work around the problem it could be that you need to articulate business challenge and work on that 1 idea it's a kind of convert that into a control but then you can then rolled out and get those results and and I think integrates kind of a key 1 and you really don't want to um you don't you wanna cry another process that your operations team then have to consume if that makes sense and what I mean is that if you go and play compliance report and then you give them a Novick report that they then have to go and work and review uh the images get sidelined you you basically got find a way of integrating your reporting and the compliance kind of reports into the current operation so she can find routes through ticketing systems or just you know something that integrates with how EM with how they only operate really deal with their that with their operations and you you will get an you get better onboarding you get people wanting to champion the idea you get people wanting to talk about it if you can help this in any help help someone with their their 1 thing and then you and word spreads around his those kind of things that that really do we really did help and we've even run at lunchtime sessions where we kind of like just onboard people with the idea of compliance and so do and but no 1 is allowed to arrive to the session and this free lunch so you've at least got the turn up with an idea for compliance control and then free the cost of the lunch session away just evaluate an order to all the things that come in and then kind of apply the structure to evaluate their importance and kind of guess steer and hopefully by the end the session we have evaluated which ones we wanna focus on and even potentially start describing you know the kind of resources that would using inspect to actually deliver that control and nothing then the your cultural begin and baking the goodness a half hour I wanted to give you um and at a little bit more of an about a bit more of an example of this is for is a little more of an extreme example but I want to prompt you now to kind of start considering and the kind of metadata that you might want to add to your controls right if you've never seen is that K. before right it's not this it doesn't scale that in fact the only thing that is that needs is that is that described block so if you look the number line 23 24 25 assumes that needs a k my advice to you is that you don't just do what it needs to run a K you should at least wrapped in a control and definitely if you look at the top style the title series this this title is gonna help you group to review your um profiles and let data and allow you to and present them in antebellum Acedan'ski upon the titles no I'm always make sure you controls have unique ID if you get into a bit of a copy and paste kind of thing we're copying controls and over the same idea and then the other 1 a unique it results from 1 has to try and try and do that and and so it and before they commit something into our souls control it and if he made sure that we had a clear title we we kind of groups controls and with a little bit of a prefix in the title cause it meant that we could reports on the easier and the 1 thing I made is a mandate and it needs a description and it needs to pass a litmus test hey then could you could your boss read the description of this control and understand what is intended is and what is going to do you know if it's not written in plain English that someone can understand this be rewritten
in a degenerate to the guy's a couple times that on its verify my mom and read this and she needs help me and was then was controls doing and you if you put that in it means that anyone in your organization just can pick it up and kind of understand what it's doing an something we didn't add and when we 1st started out no previous concepts were tagged references and then we actually and started adopts certain take the tabs that tags and retrofitted them back into the controls that we can't have a production and we use the tanks and for a variety of ways the way that we end up and storing or tags and stuff we where'd search from those and we can now stuff back to you and gate so we can basically do searches such as amazed but this particular example exit from the inspector I website and and it is a really good example to come to give you ideas of walk on you want to use a red and controls and tax through mediation for example crying symbol they're all basically gave you the codebook that would remediate against this control we added tags for and source control so we had a tag the reference where the source control is for this compliance control and you can use reference I I'm I I made a point of reference in fact the could reference an internal taking system or maybe a wiki and just to kind of give a little bit more background to why you have this control what it was where it came from so yeah trying consider those and you know the free and I kind of add it to the side like if you've got the dates of the hand and populated and you probably start out maybe writing controls by hand and I think it if I if from honest we started off and we sort of that way but then we got once to go more comfortable with right controls you know used how show to base the cradle of the frameworks we use power so for example to go back and add that the tanks to the existing profiles that we could then commit back and in if you got the dates the hand and you're OK of its scripting then you use that that's basically populate your control and with all the all the good see in uh mass data the base ad and then then we have to do in your thing is then work on the describe block which is near the actually of what you need to the control yes the all single biggest challenge and easily the winner was reporting and certainly and dealing with the um firstly such of compliance and we were the 1st list the 2nd was as good and we had some challenges around the reporting because we are a multi-tenant and customer environment and the way that we were collating and scanning the data and then that we can and easily and splits the data of course that the scam results up in between customers and as you saw from the keynote today uh that's now now part of the new version of alternate so happy days him and make sure you can you can use that but I think different don't underestimated report importance of reporting the how you do that mean we ended up not only and reporting on the scan results but and we also apply the matrix that we did so and the amounts of time saving and and potential and risk of the potential amount of on plants and then days and stuff that we did so we kind of unity and put them out the really just drawn the right medium that works for you and also was your customers I think consider all your you know your internal and departments as customers as well so you know just just very and we ended up and using cow I um and we use the information from the chef of adopts the shift our a website and it gives you a break down on the compliance API and 1 of the things you can do is if you give it a scan ID and they basically give you the results back as Jason an and then using Power BI can just import Jason and it maps in an interview between adjacent adjacent format and then basically nice and presentation and only it we chose to do that because it meant that we could multi-tenant the results we give it's what customers and and so we were kind of masking the US as a chef compliance interface from them and because really they they just wanted to know the details and when it's in the graph so that logic worked for and what for us and I think at this point I give you time none of where we were so we started at the beginning of last year say I suppose we're now 10 months in and we have we've got reporting and down with people are quite an extensive library of controls and if you can imagine and the number of devices like kind of a member of my Anita ask me my boss for the current count is in the number of controls we ended up coding and but we were very much still really diverse and delivering an internal facing and you know it was still an internal facing kind of solution was we were presenting the results as part of an In a better customer using Power BI they're very much just hand in hand with what we were kind of already providing them with the net portal so we kind of we knew that we needed to basically make a change of of basically taking it to the next level but so you we set about suppose for the last 6 months the using chef compliance inspect and then and now shift serve as a foundation we ended up launching uh our compliance service platform and given this to our customers and it's but at essentially bits
and a set of web services were with front end so that we can basically and died in governs the data and its interfacing with each of the service there was if implies in the shifts of API is acting as a bit of a middleware and allowing us to initiate and scans and demand froufrou web interface so customers can basically and requests on-demand scans of the of the service and and get the results and then and send them back and really it kind of starts and from the beginning it starts started at the end goal templates which and once we got a handle on the go 10 plates I can honestly say that was a pivotal moment in our in our in our transition in our in our a space develops and delivery because I didn't think I didn't appreciate how much it would mean um at that we are we using packet to basic developed a goal templated is odd and how you're managing and in your in your organization the moment and they were a bit of a black box so an answer from honest and so we need to get a better handle on it and and and really moving the goal 10 plates into code as in you know you and we using packet but uniform all point of view the 1st accept town and and and explains the order so when a when we came onto the discussions about um and master images templates how we manage was to business process shown the procedure shown in 10 plates and here we run this process and every 30 days we generate go 10 plates dynamically everything days space we basically new and and we build those out for the main OS is that we build so windows as a red Hat uh windows them we as part of the built and you know we're taking a much softer than mice images you know it's got sounds with implying this configuration and where the money with these postscripts using Packer we can basically output and certain POS processes so you 1 it spits out basically an image that is an our production image that we can use on public cloud they also and uh send out a vagrant box that we can then be consumed as politesse kitchen image and know that we're developing and testing staff on machines that are the same OS that we're delivering into production and wheezing Inspector basically validate and the configuration inside the OS as were building the goal templated and when the 10 plates then created were using inspect to validate the the gold image is successful in that builds think it is possible dations center object storage so why the beginning were able to in a star betting inspecting the and and having that goal templated uh process defined as code really changes spare you know the D. the magic that goes into what goes into the goal plate and is in is in source controls of the 1 amended there when I had something into the building where we can do and moving on to the creation part of the platform so you based on the goal template images that we using it's able to provision in you and me the public midpoint clown typically have been where compliance and audience of last last BMX uh always you and and as soon as it's created and it's mechanical back to the compliance server and then add another node and kicking off a scan so we are its compliance automation and like proactively with scanning the nodes at least once every 24 hours based himself a predefined profiles and ends and a really good thing about this is when the machine is that you know when we build the gold templates will will be making a lot of good configuration but which I do the right thing but they're the compliance basically will initiate a hand scanner and but they will be failures because we haven't remediated all installed on management stuck into the gold images so and it's really nice to basically see the trend analysis of the machine game created an issue a lot of compliance failures but then then getting remedies and to me before before being it's going to run an operating going into production and will also using inspects to validates and the and cloud account Blair so you what's reusing and just implies the basically validate audit the OS point were also targeting the and cloudy the eyes so that we make sure that the customer accounts are configured correctly they have the right names user accounts and notifications password says anything that we can kind of finds that we things potential risk of misconfiguration within the you within the year 0 um portal or the all the stuff flower 1 then it will basically using those so really able to help validate the configuration and such level and also within the US and and that London operate level um we're now using chefs to help mediate some of the hands and the things that we find this part they would is but water utilizing the yield cookbook so if you haven't come across that that's a really good tail into this whereas just compliance is initiating a connection to the device either over local winner important SSH the cookbook is part of a shift line is initiating an band connection to base the profile so will it is very much a bell embraces approach and we know coming in from the compliance water coming in from New Order because it might be that you have a scenario where you know you can't have inbound connections coming in for interval for whatever reasons and so yet make sure you don't forget the a cookbook and it's the it is good and it is all about continuous compliance in and we really were really trying to help change the mind-set that compliance there does to be boring and and it doesn't have to be just a broker and because if you can draw this that this is benefits it will work on it will help an so suppose enclosing and it you know this compliance platform for us unary had uh based on compliance it really helped us gain insight into what was important and war risks and within our organization you know we extended it using and by adopting best practices lessons learned and you know we track of translated personally a lot of uh documents and internal security policy documents for our customers that deal with the old paper binder and we fail to port that over and and once they see that as code you it's in source control if there was a change in we history that it just really dovetails nicely is really really helps and yeah we been and to prove that the reduction in we work and and and risk and so how of a stop talking in a have so yeah enclosing exposed vertigo if the um 1 idea sprints that we worked for us and it really helps them focus the and ineffective your business it helps in focus and just on on on trying to help you help them if that makes sense and go to a broad shall that definitely helps you know you get over the challenges of you know interfacing with a new device type so that when if anything does come up that you need to immediately and in a recent release a control for you've already done the legwork initially right a control kick off a scandal results and yet the meager cones have and remembers take people with you and you know you don't want a compliance report and take it to the front door of OPS ring the doorbell runaway him host um you know if you do that you know your launch products and you have people use it Sharon yeah the if
Subtraktion
Dienst <Informatik>
Einfügungsdämpfung
Punkt
Sichtenkonzept
Geometrische Frustration
Mailing-Liste
Datenstruktur
Systemplattform
Koordinaten
Service provider
Stereometrie
Explosion <Stochastik>
Einfügungsdämpfung
Punkt
Quader
Selbst organisierendes System
Gruppenoperation
Keller <Informatik>
Gebäude <Mathematik>
Kartesische Koordinaten
Fortsetzung <Mathematik>
E-Mail
Systemplattform
Eins
Bildschirmmaske
Datenmanagement
PCMCIA
Prozessfähigkeit <Qualitätsmanagement>
Lineare Regression
Computersicherheit
Minimalgrad
Elektronischer Programmführer
Konfigurationsraum
Zustandsmaschine
Verschiebungsoperator
Internetworking
Computersicherheit
Güte der Anpassung
Routing
Physikalisches System
Quick-Sort
Ereignishorizont
Quader
Dienst <Informatik>
Menge
Mereologie
Dezimalsystem
Server
Prozessfähigkeit <Qualitätsmanagement>
Gamecontroller
Stereometrie
Garbentheorie
Mooresches Gesetz
Information
Unternehmensarchitektur
Prozessautomation
Verkehrsinformation
Standardabweichung
Resultante
Matrizenrechnung
Umsetzung <Informatik>
Bit
Prozess <Physik>
Natürliche Zahl
Schreiben <Datenverarbeitung>
Fortsetzung <Mathematik>
Kartesische Koordinaten
Raum-Zeit
Eins
Online-Katalog
Einheit <Mathematik>
Datenmanagement
Maßstab
Standardabweichung
Elektronischer Programmführer
Chi-Quadrat-Verteilung
Einflussgröße
Gerade
Schnittstelle
Metropolitan area network
Lineares Funktional
Datennetz
Gebäude <Mathematik>
Profil <Aerodynamik>
Systemaufruf
Prozessautomation
Biprodukt
Ereignishorizont
Dienst <Informatik>
Menge
Benutzerschnittstellenverwaltungssystem
Server
Information
Schlüsselverwaltung
Prozessautomation
Lesen <Datenverarbeitung>
Standardabweichung
Instantiierung
Fehlermeldung
Aggregatzustand
Geschwindigkeit
Belegleser
Selbst organisierendes System
Mathematisierung
Matrizenrechnung
Automatische Handlungsplanung
Zahlenbereich
Gebäude <Mathematik>
Online-Katalog
Dienst <Informatik>
Systemplattform
Mathematische Logik
Whiteboard
Code
Data Mining
Mailing-Liste
Arithmetische Folge
Software
Datentyp
Endogene Variable
Turm <Mathematik>
Zusammenhängender Graph
Ereignishorizont
Konfigurationsraum
Hilfesystem
Tropfen
Linienelement
Mailing-Liste
Physikalisches System
Elektronische Publikation
Ordnungsreduktion
Chipkarte
Energiedichte
Mereologie
Gamecontroller
Verkehrsinformation
Resultante
Matrizenrechnung
Bit
Umsetzung <Informatik>
Vektorpotenzial
Prozess <Physik>
Punkt
Desintegration <Mathematik>
Versionsverwaltung
Gruppenkeim
Schreiben <Datenverarbeitung>
Zählen
Technische Optik
Übergang
Eins
Deskriptive Statistik
Metadaten
Mehrrechnersystem
Kontrollstruktur
Schnittstelle
Bildauflösung
Verschiebungsoperator
Softwaretest
Zentrische Streckung
Nichtlinearer Operator
Physikalischer Effekt
Güte der Anpassung
Reihe
Ruhmasse
Profil <Aerodynamik>
p-Block
Wiki
Biprodukt
Arithmetisches Mittel
Dienst <Informatik>
Computerschach
Verknüpfungsglied
Gruppenkeim
Benutzerschnittstellenverwaltungssystem
Dateiformat
Information
Eindeutigkeit
Ordnung <Mathematik>
Schlüsselverwaltung
Programmierumgebung
Varietät <Mathematik>
Codebuch
Wiki
Web Site
Selbst organisierendes System
Zahlenbereich
Interaktives Fernsehen
Kombinatorische Gruppentheorie
Mathematische Logik
Systemplattform
Framework <Informatik>
Code
Physikalisches System
Virtuelle Maschine
Selbst organisierendes System
Güte der Anpassung
Zahlengerade
Verkehrsinformation
Widget
Programmbibliothek
Turm <Mathematik>
Maßerweiterung
Datenstruktur
Hilfesystem
Bildgebendes Verfahren
Leistung <Physik>
Graph
Mailing-Liste
Symboltabelle
Routing
Physikalisches System
Fokalpunkt
Quick-Sort
Einfache Genauigkeit
Integral
Mapping <Computergraphik>
System F
Mereologie
Gamecontroller
Wort <Informatik>
Verkehrsinformation
Resultante
Vektorpotenzial
Bit
Punkt
Prozess <Physik>
Momentenproblem
Blackbox
Versionsverwaltung
Template
Raum-Zeit
Übergang
Datenmanagement
Web Services
Gruppe <Mathematik>
Uniforme Struktur
Bildschirmfenster
Gerade
Verschiebungsoperator
Funktion <Mathematik>
Nichtlinearer Operator
Sichtenkonzept
Computersicherheit
Template
Güte der Anpassung
Gebäude <Mathematik>
Stellenring
Profil <Aerodynamik>
Biprodukt
Algorithmische Programmiersprache
Dienst <Informatik>
Twitter <Softwareplattform>
Menge
Rechter Winkel
Server
Ordnung <Mathematik>
Portscanner
Quader
Selbst organisierendes System
Stab
Wasserdampftafel
Mathematisierung
Dienst <Informatik>
Systemplattform
Code
Virtuelle Maschine
Weg <Topologie>
Knotenmenge
Spieltheorie
Datentyp
Passwort
Biprodukt
Speicher <Informatik>
Konfigurationsraum
Bildgebendes Verfahren
Analysis
Drucksondierung
Streuungsdiagramm
Einfach zusammenhängender Raum
Benutzeroberfläche
Validität
Fokalpunkt
Ordnungsreduktion
Objekt <Kategorie>
Middleware
Mereologie
Gamecontroller
Steuerwerk
Verkehrsinformation
Streuungsdiagramm

Metadaten

Formale Metadaten

Titel Kick Starting our DevOps Transition with Chef Compliance
Serientitel Chef Conf 2017
Autor Bright, Gary
Lizenz CC-Namensnennung - Weitergabe unter gleichen Bedingungen 3.0 Unported:
Sie dürfen das Werk bzw. den Inhalt zu jedem legalen und nicht-kommerziellen Zweck nutzen, verändern und in unveränderter oder veränderter Form vervielfältigen, verbreiten und öffentlich zugänglich machen, sofern Sie den Namen des Autors/Rechteinhabers in der von ihm festgelegten Weise nennen und das Werk bzw. diesen Inhalt auch in veränderter Form nur unter den Bedingungen dieser Lizenz weitergeben.
DOI 10.5446/34591
Herausgeber Confreaks, LLC
Erscheinungsjahr 2017
Sprache Englisch

Inhaltliche Metadaten

Fachgebiet Informatik
Abstract We set out to solve the following business problems; reduce the time on task for audit work within the regulatory space, reduce unplanned work, project rework and unplanned outages. In this session I will cover why we kick started our DevOps transition using Chef Compliance and InSpec rather than diving straight into automate.

Ähnliche Filme

Loading...
Feedback